session_start();
if(!isset($_SESSION['udesig']) || ($_SESSION['udesig']!="admin" && $_SESSION['udesig']!="deo"))
header("Location:loginmain.php");
include "head.inc";
if(!isset($_POST["Submit"]))
{
?>
}
else
{
include "common.php";
dbconnect();
if($car_picture!="")
{
$img_loc = "images/".$car_picture;
}
else
$img_loc = "null";
$car_seqno = $_POST["car_seqno"];
$car_make = $_POST["car_make"];
$car_model = $_POST["car_model"];
$car_year = $_POST["car_year"];
$car_notes = $_POST["car_notes"];
$sql = "INSERT INTO `items_of_interest` ( `rec_Id` , `seqno` , `make` , `model` , `year` , `notes` , `picture_Link` )
VALUES ('',$car_seqno,'$car_make','$car_model','$car_year','$car_notes','$img_loc')";
$result = @mysql_query($sql);
if($result)
{
mysql_close();
if($_SESSION['udesig']=="admin")
print_msg("New Spare Part added !!","admin_main.php");
else
print_msg("New Spare Part added !!","deo_main.php");
}
else
{
print_msg("Process failed !!".$_POST['car_picture'].mysql_error(),"admin_main.php");
}
}
include "foot.inc";
?>